CVE-2018-13077: Integer Overflow
First published: Tue Jul 03 2018(Updated: )
The mintToken function of a smart contract implementation for CTB, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| CTDB Project |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2018-13077?
CVE-2018-13077 is considered critical due to the potential for unauthorized balance manipulation.
How do I fix CVE-2018-13077?
To fix CVE-2018-13077, update the smart contract implementation to handle integer overflow errors properly.
What software is affected by CVE-2018-13077?
The CVE-2018-13077 vulnerability affects the CTB Ethereum token smart contract.
Who can exploit CVE-2018-13077?
The owner of the CTB contract can exploit CVE-2018-13077 to manipulate user balances.
What impact does CVE-2018-13077 have on users?
CVE-2018-13077 allows the contract owner to set arbitrary balances, potentially leading to financial loss for users.
- agent/type
- agent/softwarecombine
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/weakness
- agent/last-modified-date
- agent/references
- agent/author
- agent/description
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/ctb project
- canonical/ctdb project